diff --git a/permissions_samples/azure/OnboardMssqlPermissions.txt b/permissions_samples/azure/OnboardMssqlPermissions.txt new file mode 100644 index 000000000..566e905b1 --- /dev/null +++ b/permissions_samples/azure/OnboardMssqlPermissions.txt @@ -0,0 +1,23 @@ +{ + "properties": { + "roleName": "dsf_role", + "description": "Azure role for DSF Kit", + "assignableScopes": [ + # Fill subscription scope here + ], + "permissions": [ + { + "actions": [ + "Microsoft.EventHub/namespaces/*", + "Microsoft.Insights/diagnosticSettings/*", + "Microsoft.Sql/locations/connectionPoliciesAzureAsyncOperation/*", + "Microsoft.Sql/servers/*", + "Microsoft.Storage/storageAccounts/*", + ], + "notActions": [], + "dataActions": [], + "notDataActions": [] + } + ] + } +} \ No newline at end of file